package com.lwt.config;

import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;

import java.util.LinkedHashMap;
import java.util.Map;

/**
 * @program: springboot-06-shiro
 * @author: 关键我是大怪
 * @create: 2021-07-02 16:31
 */

@Configuration
public class ShiroConfig {

    //ShiroFileterFactoryBean

    @Bean
    public ShiroFilterFactoryBean getShiroFilterFactoryBean(@Qualifier("securityManager") DefaultWebSecurityManager defaultWebSecurityManager) {

        ShiroFilterFactoryBean bean = new ShiroFilterFactoryBean();
        //设置安全管理器
        bean.setSecurityManager(defaultWebSecurityManager);

        //添加shiro的内置过滤器
        /*
          anon:无需认证就可以访问
          authc:必须认证了才能访问
          user：必须拥有 记住我功能才能用
          perms：拥有对某给资源的权限才能访问：
          role：拥有某个角色权限才能访问
         */
//        filtermap.put("/user/add", "authc");
//        filtermap.put("/user/update", "authc");

        //拦截
        Map<String, String> filtermap = new LinkedHashMap<>();
        //授权
        filtermap.put("/admin/logout", "logout");
        filtermap.put("/admin/login", "anon");
        filtermap.put("/admin/*", "authc");

        bean.setFilterChainDefinitionMap(filtermap);

        //设置登陆请求
        bean.setLoginUrl("/admin");

        return bean;
    }

    //DafaultWebSecurityManager
    @Bean(name = "securityManager")
    public DefaultWebSecurityManager defaultWebSecurityManager(@Qualifier("userRealm") UserRealm userRealm) {
        DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
        //关联realm
        securityManager.setRealm(userRealm);


        return securityManager;
    }

    //创建realm对象 ，需要自定义类
    @Bean
    public UserRealm userRealm() {
        return new UserRealm();
    }

}
